This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft File: xZKgYJDwFpQNMesbCbrhLZSxlbA.mft (raw, json) Hash identifier: 8PO0Bj0ckyrnWhf2meNq+lTSBTdJAadUDUZs0LsjNYs= Subject key identifier: 24:D0:95:7E:62:51:27:2D:3C:73:62:4F:17:0A:1C:17:23:F1:80:90 Authority key identifier: C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0 Certificate issuer: /CN=c592a06090f016940d31eb1b09bae12d94b195b0 Certificate serial: 019B329EFEAB0FBAEEDC9DFAE6707FF1248E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft Manifest number: 0663 Signing time: Thu 18 Dec 2025 18:00:39 +0000 Manifest this update: Thu 18 Dec 2025 18:00:39 +0000 Manifest next update: Fri 19 Dec 2025 18:00:39 +0000 Files and hashes: 1: G68GMPXMUX3Qhn5n2oFwnwjBDXg.roa (hash: 6TErr3RLE+4ObuY83LCNvVHOw/1OAYj91Y93qk/e+tA=) 2: xZKgYJDwFpQNMesbCbrhLZSxlbA.crl (hash: HcXe2/EFSTlALAZTt2dNVgHWynaICHkNaPcNZ0M/Xuk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 18:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:9e:fe:ab:0f:ba:ee:dc:9d:fa:e6:70:7f:f1:24:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c592a06090f016940d31eb1b09bae12d94b195b0 Validity Not Before: Dec 18 18:00:39 2025 GMT Not After : Dec 19 18:00:39 2025 GMT Subject: CN=24d0957e6251272d3c73624f170a1c1723f18090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e0:fb:0f:1a:7e:df:32:0a:45:f3:a8:91:a7: a8:a6:0a:e7:6f:54:f0:4f:65:8d:f3:4a:a8:9b:19: 32:cd:52:70:5a:8d:20:22:18:bc:4c:c7:76:a1:77: 2a:4b:39:e8:81:fe:17:3c:ff:10:eb:d2:ef:e3:70: e7:0c:86:9b:5d:e0:33:96:b5:aa:9b:1c:40:35:9d: 7c:4c:8e:cc:96:e7:e1:5f:ea:78:b5:31:9c:03:fb: bb:42:64:8e:0c:8a:1b:84:65:8d:f8:e5:04:f5:c7: 9f:27:25:86:fa:ed:96:d3:d3:7d:cc:0b:19:08:68: 05:0a:1b:14:16:7e:27:c6:2a:10:25:2a:64:d4:34: de:ae:31:8a:f2:7c:7a:a1:ee:45:7f:9f:24:2f:e5: 73:c2:62:6d:37:cc:6d:2f:3d:7d:a9:1d:a4:67:7b: af:95:b2:8b:77:4c:e8:78:1e:de:7f:70:0c:65:71: bd:95:eb:8b:89:6f:e1:5d:c6:b4:32:a7:28:a4:77: 60:e8:61:70:ae:ce:c5:57:bb:d7:d3:56:38:bc:5e: 94:9b:8b:8c:55:38:63:2a:bc:3f:23:86:06:2c:c3: 10:09:14:d9:38:69:40:7b:ed:c4:da:42:c8:f4:5f: 2a:5f:53:9a:a5:22:9d:69:3a:6d:55:10:2c:57:e5: d0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D0:95:7E:62:51:27:2D:3C:73:62:4F:17:0A:1C:17:23:F1:80:90 X509v3 Authority Key Identifier: keyid:C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:af:73:b4:fb:0f:fb:d4:66:d1:2a:a6:26:1d:f2:a8:18:da: 4f:cf:61:bb:29:04:5a:b2:31:7c:a8:d5:1c:a7:b4:79:2f:63: fe:ec:81:ee:40:7c:00:59:91:a4:c1:dc:aa:00:43:f1:e2:88: 9e:61:64:44:97:ae:ae:49:e4:44:82:1d:48:5e:30:3e:87:73: 0e:95:75:41:58:61:1c:ad:8b:3d:3d:e2:2d:c1:af:e9:7d:cd: ee:e7:93:9f:62:b4:6b:69:08:06:84:03:b2:fa:6a:6e:9f:96: 83:a6:9b:7b:43:bd:f3:21:ad:97:e4:eb:9a:1a:cf:25:78:2c: 49:02:2b:3b:2e:59:f8:98:84:7e:e6:07:79:ea:83:32:a9:88: ea:26:79:6a:1c:38:75:cc:6a:16:a3:c1:0b:1d:61:fa:ef:d9: a2:4c:65:b4:e7:1e:42:a3:8d:b7:77:d4:a0:b8:6c:57:6b:70: 4c:39:8a:59:36:ef:6c:b2:d5:8c:ae:97:31:d1:e9:63:3d:10: d7:44:7a:bf:67:b8:c0:86:98:b7:67:30:b5:f2:5f:76:ae:af: 22:a0:5e:41:d4:79:01:73:3d:3f:53:05:21:cd:11:ed:57:ee: 5f:c7:9f:16:c6:78:bf:7f:53:52:dc:04:5a:db:17:a0:1d:d0: 81:45:e6:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsynv6rD7ru3J365nB/8SSOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1OTJhMDYwOTBmMDE2OTQwZDMxZWIxYjA5YmFlMTJkOTRi MTk1YjAwHhcNMjUxMjE4MTgwMDM5WhcNMjUxMjE5MTgwMDM5WjAzMTEwLwYDVQQD EygyNGQwOTU3ZTYyNTEyNzJkM2M3MzYyNGYxNzBhMWMxNzIzZjE4MDkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzeD7Dxp+3zIKRfOokaeopgrnb1Tw T2WN80qomxkyzVJwWo0gIhi8TMd2oXcqSznogf4XPP8Q69Lv43DnDIabXeAzlrWq mxxANZ18TI7MlufhX+p4tTGcA/u7QmSODIobhGWN+OUE9cefJyWG+u2W09N9zAsZ CGgFChsUFn4nxioQJSpk1DTerjGK8nx6oe5Ff58kL+VzwmJtN8xtLz19qR2kZ3uv lbKLd0zoeB7ef3AMZXG9leuLiW/hXca0MqcopHdg6GFwrs7FV7vX01Y4vF6Um4uM VThjKrw/I4YGLMMQCRTZOGlAe+3E2kLI9F8qX1OapSKdaTptVRAsV+XQKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCTQlX5iUSctPHNiTxcKHBcj8YCQMB8GA1UdIwQY MBaAFMWSoGCQ8BaUDTHrGwm64S2UsZWwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFpLZ1lKRHdGcFFOTWVzYkNicmhMWlN4bGJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS83MDM5MDItNzA2MS00ZWNiLTlkZjEt YzQ1NjIwMzI2NDkxLzEveFpLZ1lKRHdGcFFOTWVzYkNicmhMWlN4bGJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS83MDM5MDItNzA2MS00ZWNiLTlkZjEtYzQ1NjIwMzI2NDkx LzEveFpLZ1lKRHdGcFFOTWVzYkNicmhMWlN4bGJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGq9ztPsP +9Rm0SqmJh3yqBjaT89huykEWrIxfKjVHKe0eS9j/uyB7kB8AFmRpMHcqgBD8eKI nmFkRJeurknkRIIdSF4wPodzDpV1QVhhHK2LPT3iLcGv6X3N7ueTn2K0a2kIBoQD svpqbp+Wg6abe0O98yGtl+TrmhrPJXgsSQIrOy5Z+JiEfuYHeeqDMqmI6iZ5ahw4 dcxqFqPBCx1h+u/ZokxltOceQqONt3fUoLhsV2twTDmKWTbvbLLVjK6XMdHpYz0Q 10R6v2e4wIaYt2cwtfJfdq6vIqBeQdR5AXM9P1MFIc0R7VfuX8efFsZ4v39TUtwE WtsXoB3QgUXmYw== -----END CERTIFICATE-----Generated at Fri Dec 19 04:02:34 2025 by rpki-client